The Director Security Engineering Solutions is responsible for the overall coordination of information security solutions/engineering activities for Information Security and reports directly to the Sr. Director of Security Engineering. This role leads a team delivering security solutions, designs and assists in the deployment of security tools and applications, and makes recommendations based on strategic understanding of the overall security technology strategy, threat landscape, attack surface and threat intelligence information.
Establishes strategic direction in order to ensure appropriate security solutions will be optimized and priorities are continuously reviewed for business needs
Partner with IT Enterprise Architects to ensure consistency and effectiveness in global approaches, processes, and procedures for alignment with overall corporate cyber strategy
Provides Information Technology leadership with security guidance, direction and recommendations in order to meet long-term business goals by designing security into solutions up front
Establishes long-term strategy and policy decisions for Information Security and recommends strategic technology direction
Serves as a resource to the organization on both business and technology trends, and must be recognized as an authority in Information Security
Define, coordinate, and implement security solutions for projects that adhere to security standards to drive the global security program
Develop a framework that drives secure solutions to ensure comprehensive security design for PepsiCo and global Information Security functions
Develop and execute a roadmap with initiatives and enhancements to complement the business model, mitigate security vulnerabilities, and grow security capabilities to remain current with the ever expanding threat landscape.
Ensure consistent application of the policy/standards exception process with risk assessments to provide remediation and exception duration guidance
Drive consistency and continuity in process and procedures with security standards exceptions for localization as required by regional laws and/or special circumstances
Collaborate with the information risk management and compliance groups to identify, prioritize and respond to risk components, developing security solutions in support of business strategy
Interface with external vendors, partners, and customers, as well as other internal teams including Enterprise Architecture, Solution Architecture, Network Engineering, Compute Engineering and End User Compute teams
Work closely with project and engineering teams to ensure that projects meet or exceed security requirements. This includes ensuring that the security architecture is well documented and communicated
Qualifications:
Bachelor's or Advanced degree in IT related topics.
15+ years' with information technology/security experience
Broad knowledge of security architecture and controls in various infrastructure platforms including network (physical, virtual, internal, cloud), system platforms, storage, directory services, and end user computing
Experience with Cloud / SaaS / IaaS environments and related security solutions
Results oriented and ability to balance multiple priorities and projects
Executive Presence
Multi-national cultural sensitivity and navigation
Excellent communication skills
Innate confidence and influencing ability for building security into solutions up front
Strong org development experience to build effective and cohesive team
Excellent multi-cultural sensitivity skills
Experience in identifying best approach and options from multiple solutions involving ambiguity and conflicting priorities to enable security within the business
Experience in strategic thinking to drive multi-year operating plans
CISSP, CISM and CISA are desirable
Now submit your application online and subscribe to email or follow us on twitter to get similar jobs in the future.
Posts
